caf5a29d5fe44ce011c7d9e82e41c3baaa3d17306facda9d18b6a51d2e793b34

General

Target

caf5a29d5fe44ce011c7d9e82e41c3baaa3d17306facda9d18b6a51d2e793b34
Size

156KB
MD5

3c901c4f70f99b5c322f814d076e4e0f
SHA1

7b9fd810d4075258301a27ba690db02316b9b5f0
SHA256

caf5a29d5fe44ce011c7d9e82e41c3baaa3d17306facda9d18b6a51d2e793b34
SHA512

44ef29f1b78e107171f30f54ea44189b2c6239069890353cb2f4a6ebd5da708d56c2fbf0c2bbdc2b51ff87d276ad63a5fcf5ae512679c1356e8ac18ed6848627
SSDEEP

3072:aaILDWcmEZvQS/MCwHVBO5/VAUd/nBH1GRSuUFNFqZn9zlnjAJB:DEZvQaMhO5/VZBH1Nt8nTj+B

Score

N/A

Malware Config

Signatures

Files

caf5a29d5fe44ce011c7d9e82e41c3baaa3d17306facda9d18b6a51d2e793b34
.exe windows x86

061f50870364d43a96fb59c24eee0c7a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

shell32

SHGetFileInfoW

oleacc

LresultFromObject
CreateStdAccessibleObject

psapi

GetProcessMemoryInfo

ole32

CoRevokeClassObject
CoRegisterClassObject
CoUninitialize
CoTaskMemFree
CoTaskMemRealloc
CoCreateInstance
CoTaskMemAlloc
CoInitialize
StringFromGUID2
StringFromCLSID

kernel32

FillConsoleOutputAttribute
lstrcpyW
GetTickCount
GetCPInfo
GetProcessPriorityBoost
GlobalFree
FindClose
GlobalAlloc
LockResource
GetLastError
EnumResourceNamesW
OutputDebugStringW
CreateFileMappingW
WideCharToMultiByte
lstrcpyA
lstrcmpiW
lstrlenW
FreeEnvironmentStringsW
InitializeCriticalSection
MultiByteToWideChar
GetACP
GetModuleHandleW

gdi32

CreateFontIndirectW
GetOutlineTextMetricsW
GetTextMetricsW
DeleteObject
SelectObject
AddFontResourceExW

user32

wsprintfW
GetWindowLongA
KillTimer
PostThreadMessageW
GetDC
SetTimer
GetMessageW
CharUpperW
DispatchMessageW
TranslateMessage
CharNextW
UnregisterClassA

advapi32

RegOpenKeyExW
RegQueryInfoKeyW
RegCreateKeyExW
RegEnumKeyExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegSetValueExW

Sections

.text
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isete
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

061f50870364d43a96fb59c24eee0c7a

Headers

File Characteristics

Imports

shell32

oleacc

psapi

ole32

kernel32

gdi32

user32

advapi32

Sections

.text Size: 93KB - Virtual size: 93KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 59KB - Virtual size: 58KB

.isete Size: 1024B - Virtual size: 100KB

.text
Size: 93KB - Virtual size: 93KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 59KB - Virtual size: 58KB

.isete
Size: 1024B - Virtual size: 100KB